Cisco IP Telephony Network Design Guide - Net130.Com IP Telephony Network... · iii Cisco IP Telephony Network Design Guide 78-11103-03 CONTENTS Preface xi Purpose xi Audience xii

Cisco IP Telephony Network Design GuideCisco CallManager Release 3.0(5)

170 West Tasman DriveSan Jose, CA 95134-1706USAhttp://www.cisco.com

Cisco Systems, Inc.Corporate Headquarters

Tel:800 553-NETS (6387)408 526-4000

Fax: 408 526-4100

Customer Order Number: DOC-7811103=Text Part Number: 78-11103-03

THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FULL RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.

THE SOFTWARE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.

The Cisco implementation of TCP header compression is an adaptation of a program developed by the University of California, Berkeley (UCB) as part of UCBs public domain version of the UNIX operating system. All rights reserved. Copyright 1981, Regents of the University of California.

NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED AS IS WITH ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, INCLUDING, WITHOUT LIMITATION, THOSE OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING, USAGE, OR TRADE PRACTICE.

IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING, WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF THE USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

AtmDirector, Browse with Me, CCDA, CCDE, CCDP, CCIE, CCNA, CCNP, CCSI, CD-PAC, CiscoLink, the Cisco NetWorks logo, the Cisco Powered Network logo, Cisco Systems Networking Academy, the Cisco Systems Networking Academy logo, Fast Step, Follow Me Browsing, FormShare,FrameShare, GigaStack, IGX, Internet Quotient, IP/VC, iQ Breakthrough, iQ Expertise, iQ FastTrack, the iQ Logo, iQ Net Readiness Scorecard, MGX, the Networkers logo, Packet, PIX, RateMUX, ScriptShare, SlideCast, SMARTnet, TransPath, Voice LAN, Wavelength Router, WebViewer are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, Empowering the Internet Generation, are service marks of Cisco Systems, Inc.; and Aironet, ASIST, BPX, Catalyst, Cisco, the Cisco Certified Internetwork Expert Logo, Cisco IOS, the Cisco IOS logo, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Enterprise/Solver, EtherChannel, EtherSwitch, FastHub, IOS, IP/TV, LightStream, Post-Routing, Pre-Routing, Registrar, StrataView Plus, Stratm, SwitchProbe, TeleRouter, and VCO are registered trademarks of Cisco Systems, Inc. or its affiliates in the U.S. and certain other countries.

All other brands, names, or trademarks mentioned in this document or Web site are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0011R)

Cisco IP Telephony Network Design GuideCopyright 2000, 2001, Cisco Systems, Inc.All rights reserved.

C O N T E N T S

Preface xi

Purpose xi

Audience xii

Organization xii

Revision History xiv

Conventions xv

Additional Information xvii

Obtaining Documentation xviii

World Wide Web xviii

Documentation CD-ROM xviii

Ordering Documentation xviii

Documentation Feedback xix

Obtaining Technical Assistance xix

Cisco.com xix

Technical Assistance Center xx

Contacting TAC by Using the Cisco TAC Website xx

Contacting TAC by Telephone xxi

C H A P T E R 1 Introduction 1-1

General Design Models 1-1

Single-Site Model 1-3

Multiple Sites with Independent Call Processing 1-5

iiiCisco IP Telephony Network Design Guide

78-11103-03

Contents

Multisite IP WAN with Distributed Call Processing 1-7

Multisite IP WAN with Centralized Call Processing 1-10

C H A P T E R 2 Campus Infrastructure Considerations 2-1

Overview 2-2

Power Protection Strategies 2-4

Network Infrastructure 2-5

High Availability 2-7

Physical Connectivity Options 2-9

Power to IP Phones 2-10

Inline Power 2-10

Establishing Power to the IP Phone 2-12

Inline Power Configuration 2-13

Other Inline Power Considerations 2-15

External Patch Panel Power 2-17

Wall Power 2-20

Summary of Recommendations 2-20

IP Addressing and Management 2-21

CDP Enhancements 2-22

VVID Field 2-22

Trigger Field 2-22

Power Requirement Field 2-23

Auxiliary VLANs and Data VLANs 2-23

Voice VLAN Configuration 2-24

Connecting to the Network 2-25

Sample Addressing Plan and Recommendations 2-26

ivCisco IP Telephony Network Design Guide

78-11103-03

Contents

Quality of Service 2-28

Traffic Classification Types 2-28

Trust Boundaries 2-29

Traffic Classification at Layer 2 2-30

Traffic Classification at Layer 3 2-34

Layer 3 Traffic Classification on the Cisco Catalyst 6000 2-34

Summary of Capabilities and Recommendations 2-36

C H A P T E R 3 Cisco CallManager Clusters 3-1

Cluster Operation and Scalability Guidelines 3-1

Device Weights 3-3

Intracluster Communication 3-5

Cisco CallManager Redundancy 3-6

Redundancy Group Configurations 3-6

Device Pool Configuration 3-9

Campus Clustering Guidelines 3-12

Intercluster Communication 3-14

Cluster Provisioning for the Campus 3-14

Clusters for Multisite WAN with Distributed Call Processing 3-15

Clusters for Multisite WAN with Centralized Call Processing 3-18

Intracluster and Intercluster Feature Transparency 3-21

vCisco IP Telephony Network Design Guide

78-11103-03

Contents

C H A P T E R 4 Gateway Selection 4-1

Supported Protocols 4-2

DTMF Relay 4-3

Skinny Gateways 4-4

Cisco IOS H.323 Gateways 4-4

MGCP Gateway 4-4

Cisco CallManager Redundancy 4-5

Skinny Gateways 4-5

IOS H.323 Gateways 4-5

MGCP Gateway 4-6

Supplementary Services 4-7

Skinny Gateways 4-7

IOS H.323 Gateways 4-8

MGCP Gateway 4-9

Site-Specific Gateway Requirements 4-9

C H A P T E R 5 Dial Plan Architecture and Configuration 5-1

Cisco CallManager Dial Plan Architecture 5-1

Route Pattern 5-6

Route List 5-7

Route Group 5-7

Devices 5-8

Digit Translation Tables 5-9

Special Dial String Considerations 5-10

On-Net Route Pattern 5-11

Outbound Calls Through the PSTN 5-12

viCisco IP Telephony Network Design Guide

78-11103-03

Contents

Configuring Dial Plan Groups and Calling Restrictions 5-14

Partitions 5-15

Calling Search Space 5-15

Dial Plan Guidelines and Configuration 5-18

Campus and Individual Site Dial Plans 5-19

Multi-Site WAN Dial Plans 5-21

The Role of a Gatekeeper 5-21

C H A P T E R 6 Multisite WAN with Distributed Call Processing 6-1

Distributed Call Processing Model 6-1

Call Admission Control 6-3

Operational Model 6-8

Gatekeeper Configuration 6-9

Cisco CallManager Configuration 6-10

Interaction Between Cisco CallManager and Gatekeeper 6-11

Considerations for Using a Gatekeeper 6-15

Dial Plan Considerations 6-15

Using Cisco CallManager to Route Calls 6-17

Using the Gatekeeper to Route Calls 6-19

Cisco CallManager Configuration 6-22

Gatekeeper Configuration 6-27

Gatekeeper Selection and Redundancy 6-28

Configuring Dialing Restrictions 6-28

Bandwidth Consumption of Dialed Numbers 6-28

Cisco CallManager Cluster Considerations 6-30

DSP Resource Provisioning for Transcoding and Conferencing 6-30

Voice Messaging Considerations 6-32

viiCisco IP Telephony Network Design Guide

78-11103-03

Contents

C H A P T E R 7 Multisite WAN with Centralized Call Processing 7-1

Centralized Call Processing Model 7-1


Caveats for Locations-Based Call Admission Control 7-4

Dial Plan Considerations 7-5

Interlocation Calls 7-5

Intercluster Calls 7-6

Local PSTN Calls 7-6

Design Example 7-6

Cisco CallManager Cluster Considerations 7-8

DSP Resource Provisioning for Transcoding and Conferencing 7-10

Voice Messaging Considerations 7-12

C H A P T E R 8 Quality of Service 8-1

Campus QoS Model 8-1

Traffic Classification 8-2

Interface Queuing 8-2

WAN QoS Model 8-4

WAN Provisioning 8-4

WAN QoS Tools 8-5

Traffic Prioritization 8-5

Link Efficiency Techniques 8-7

Traffic Shaping 8-9

Best Practices 8-10


viiiCisco IP Telephony Network Design Guide

78-11103-03

Contents

C H A P T E R 9 Catalyst DSP Provisioning 9-1

Understanding the Catalyst DSP Resources 9-2

Catalyst Conferencing Services 9-4

Conferencing Design Details 9-4

Conferencing Caveats 9-6

Catalyst MTP Transcoding Services 9-7

MTP Transcoding Design Details 9-7

IP-to-IP Packet Transcoding and Voice Compression 9-7

Voice Compression, IP-to-IP Packet Transcoding, and Conferencing 9-9

IP-to-IP Packet Transcoding Across Intercluster Trunks 9-10

MTP Transcoding Caveats 9-12

Catalyst 4000 Voice Services 9-13

Catalyst 6000 Voice Services 9-15

C H A P T E R 10 Migrating to an IP Telephony Network 10-1

Network Models 10-1

PBX and Voice Messaging Interfaces and Protocols 10-2

Simple IP Network Migration Sequence 10-3

Reference Models for Migration Configurations 10-6

Detailed Discussion of Model A 10-7

Detailed Discussion of Model B 10-12

Detailed Discussion of Model C 10-15

Detailed Discussion of Model D 10-18

Cisco Digital PBX Adapter (DPA) 10-20

Understanding How the DPA 7630 Works 10-21

Why is the DPA 7630 Needed? 10-21

ixCisco IP Telephony Network Design Guide

78-11103-03

Contents

Can I Just Use SMDI? 10-21

What If I Cannot Use SMDI? 10-22

Choosing an Integration Mode 10-22

Using the Simple Integration Mode 10-23

Using the Hybrid Integration Mode 10-24

Using the Multiple Integration Mode 10-25

C H A P T E R 11 Network Management 11-1

Remote Serviceability for Cisco CallManager 11-1

SNMP Instrumentation on the Cisco CallManager Server 11-2

System Logging Components 11-3

Syslog Collector 11-4

Syslog Administrative Interface 11-6

CiscoWorks2000 Voice Management Features 11-8

Campus Manager 11-11

User Tracking 11-12

Trace Path Analysis 11-13

Resource Manager Essentials 11-15

Inventory Control and Reporting 11-15

System Logging Management 11-16

Syslog Message Filtering 11-18

Alarms 11-19

G L O S S A R Y

I N D E X

xCisco IP Telephony Network Design Guide

78-11103-03

Preface

This preface describes the purpose, intended audience, organization, and conventions for the Cisco IP Telephony Network Design Guide.

PurposeThis document serves as an implementation guide for Cisco AVVID (Architecture for Voice, Video and Integrated Data) networks based on Cisco CallManager Release 3.0(5). With such a high level of industry interest regarding IP telephony, customers are aggressively pursuing Cisco solutions for both large and small networks. Solutions based on Cisco CallManager Release 3.0(5) allow Cisco to deliver large-scale IP telephony systems with many capabilities.

However, it is important to ensure that these systems fit successfully within a set of boundaries. This document serves as a guide to all aspects of designing Cisco AVVID networks, and includes working configurations. The many new hardware and software capabilities in Cisco CallManager Release 3.0(5) are covered in detail in the various solutions and deployment models. Important components such as minimum Cisco IOS release requirements and recommended platforms are noted for each model.

This document will be updated as the Cisco AVVID solution set grows with subsequent releases of Cisco CallManager.

xiCisco IP Telephony Network Design Guide

78-11103-03

PrefaceAudience

AudienceThis guide is intended for systems engineers and others responsible for designing Cisco AVVID networks based on Cisco CallManager Release 3.0(5).

Caution The design guidelines in this document are based on the best currently available knowledge about the functionality and operation of the Cisco AVVID components. The information in this document is subject to change without notice.

OrganizationFollowing are the chapters of this guide and the subjects they address:

Chapter Title Description

Chapter 1 Introduction Gives a high-level overview of each Cisco AVVID deployment model and defines the boundaries for these designs.

Chapter 2 Campus Infrastructure Considerations

Discusses issues to consider when preparing a LAN infrastructure for a Cisco AVVID solution.

Chapter 3 Cisco CallManager Clusters Discusses the concept, provisioning, and configuration of Cisco CallManager clusters.

Chapter 4 Gateway Selection Discusses issues concerning the selection of gateways for connecting an IP telephony network to the PSTN or to legacy PBX and key systems.

Chapter 5 Dial Plan Architecture and Configuration

Discusses the architecture and operation of the Cisco CallManager dial plan and provides design recommendations for campus environments.

Chapter 6 Multisite WAN with Distributed Call Processing

Provides design guidelines for multi-site WAN systems using Cisco CallManager Release 3.0(5) for distributed call processing.

xiiCisco IP Telephony Network Design Guide

78-11103-03

PrefaceOrganization

Chapter 7 Multisite WAN with Centralized Call Processing

Provides design guidelines for multi-site WAN systems using Cisco CallManager Release 3.0(5) for centralized call processing.

Chapter 8 Quality of Service Addresses the QoS requirements for Cisco AVVID implementations over the enterprise WAN.

Chapter 9 Catalyst DSP Provisioning Describes the Catalyst digital signal processor (DSP) resources and discusses how to provision these resources.

Chapter 10 Migrating to an IP Telephony Network

Explains how an enterprise can migrate from a conventional PBX and its adjunct systems (principally voice messaging) to a Cisco AVVID network.

Chapter 11 Network Management Introduces features of CiscoWorks2000 and Remote Serviceability for Cisco CallManager that provide network management capabilities for Cisco AVVID networks.

Chapter Title Description

xiiiCisco IP Telephony Network Design Guide

78-11103-03

PrefaceRevision History

Revision HistoryThe following revisions have been made to this document:

Revision Date Major Changes Since Previous Edition

12/08/00 Added Chapter 11 on network management.

Revised gatekeeper information in Chapter 6.

11/22/00 Revised document for Cisco CallManager Release 3.0(5).

Updated details of campus infrastructure design in Chapter 2.

Revised bandwidth requirements for inter-cluster calls in Chapter 3.

Updated gateway information in Chapter 4.

Added gatekeeper information to Chapter 5.

Updated details of call admission control and gatekeepers in Chapter 6.

Revised major portions of the Quality of Service (QoS) information in Chapter 8.

Updated details of Catalyst DSP provisioning in Chapter 9.

Removed the chapter on Cisco uOne from this book. This information will be covered in a separate document.

Updated migration information in Chapter 10.

06/30/00 Reformatted document to allow for online display.

Updated details of cluster provisioning in Chapter 3.

Updated details of Catalyst DSP provisioning in Chapter 9.

xivCisco IP Telephony Network Design Guide

78-11103-03

PrefaceConventions

ConventionsThis document uses the following conventions:

Convention Description

boldface font Commands and keywords are in boldface.

italic font Arguments for which you supply values are in italics.

[ ] Elements in square brackets are optional.

{ x | y | z } Alternative keywords are grouped in braces and separated by vertical bars.

[ x | y | z ] Optional alternative keywords are grouped in brackets and separated by vertical bars.

string A nonquoted set of characters. Do not use quotation marks around the string or the string will include the quotation marks.

screen font Terminal sessions and information the system displays are in screen font.

boldface screen font

Information you must enter is in boldface screen font.

italic screen font Arguments for which you supply values are in italic screen font.

This pointer highlights an important line of text in an example.

^ The symbol ^ represents the key labeled Controlfor example, the key combination ^D in a screen display means hold down the Control key while you press the D key.

< > Nonprinting characters, such as passwords, are in angle brackets.

xvCisco IP Telephony Network Design Guide

78-11103-03

PrefaceConventions

Notes use the following conventions:

Note Means reader take note. Notes contain helpful suggestions or references to material not covered in the publication.

Timesavers use the following conventions:

Timesaver Means the described action saves time. You can save time by performing the action described in the paragraph.

Tips use the following conventions:

Tips Means the information contains useful tips.

Cautions use the following conventions:

Caution Means reader be careful. In this situation, you might do something that could result in equipment damage or loss of data.

Warnings use the following conventions:

Warning This warning symbol means danger. You are in a situation that could cause bodily injury. Before you work on any equipment, you must be aware of the hazards involved with electrical circuitry and familiar with standard practices for preventing accidents.

xviCisco IP Telephony Network Design Guide

78-11103-03

PrefaceAdditional Information

Additional InformationThis section contains references to documents that provide additional information on subjects covered in this guide.

High availability design:

http://www.cisco.com/warp/partner/synchronicd/cc/sol/mkt/ent/ndsgn/highd_wp.htm

http://www.zdnet.com/zdtag/whitepaper/campuslan.pdf

Power protection:

http://www.apcc.com/go/machine/cisco/3a.cfm

Simple Mail Transfer Protocol (SMTP):

http://www.cisco.com/univercd/cc/td/doc/product/software/ioss390/ios390ug/ugsmtp.htm

Internet Message Access Protocol (IMAP):

http://www.imap.org/whatisIMAP.html

Lightweight Directory Access Protocol Version 3 (LDAPv3):

http://www.critical-angle.com/ldapworld/ldapv3.html

Glossary of terms and acronyms:

http://www.cisco.com/univercd/cc/td/doc/cisintwk/ita/index.htm

http://www.cisco.com/univercd/cc/td/doc/product/voice/index.htm

xviiCisco IP Telephony Network Design Guide

78-11103-03

PrefaceObtaining Documentation

Obtaining DocumentationThe following sections provide sources for obtaining documentation from Cisco Systems.

World Wide WebYou can access the most current Cisco documentation on the World Wide Web at the following sites:

http://www.cisco.com

http://www-china.cisco.com

http://www-europe.cisco.com

Documentation CD-ROMCisco documentation and additional literature are available in a CD-ROM package, which ships with your product. The Documentation CD-ROM is updated monthly and may be more current than printed documentation. The CD-ROM package is available as a single unit or as an annual subscription.

Ordering DocumentationCisco documentation is available in the following ways:

Registered Cisco Direct Customers can order Cisco Product documentation from the Networking Products MarketPlace:

http://www.cisco.com/cgi-bin/order/order_root.pl

Registered Cisco.com users can order the Documentation CD-ROM through the online Subscription Store:

http://www.cisco.com/go/subscription

Nonregistered Cisco.com users can order documentation through a local account representative by calling Cisco corporate headquarters (California, USA) at 408 526-7208 or, in North America, by calling 800 553-NETS(6387).

xviiiCisco IP Telephony Network Design Guide

78-11103-03

PrefaceObtaining Technical Assistance

Documentation FeedbackIf you are reading Cisco product documentation on the World Wide Web, you can submit technical comments electronically. Click Feedback in the toolbar and select Documentation. After you complete the form, click Submit to send it to Cisco.

You can e-mail your comments to [email protected].

To submit your comments by mail, for your convenience many documents contain a response card behind the front cover. Otherwise, you can mail your comments to the following address:

Cisco Systems, Inc.Document Resource Connection170 West Tasman DriveSan Jose, CA 95134-9883

We appreciate your comments.

Obtaining Technical AssistanceCisco provides Cisco.com as a starting point for all technical assistance. Customers and partners can obtain documentation, troubleshooting tips, and sample configurations from online tools. For Cisco.com registered users, additional troubleshooting tools are available from the TAC website.

Cisco.comCisco.com is the foundation of a suite of interactive, networked services that provides immediate, open access to Cisco information and resources at anytime, from anywhere in the world. This highly integrated Internet application is a powerful, easy-to-use tool for doing business with Cisco.

Cisco.com provides a broad range of features and services to help customers and partners streamline business processes and improve productivity. Through Cisco.com, you can find information about Cisco and our networking solutions, services, and programs. In addition, you can resolve technical issues with online

xixCisco IP Telephony Network Design Guide

78-11103-03


technical support, download and test software packages, and order Cisco learning materials and merchandise. Valuable online skill assessment, training, and certification programs are also available.

Customers and partners can self-register on Cisco.com to obtain additional personalized information and services. Registered users can order products, check on the status of an order, access technical support, and view benefits specific to their relationships with Cisco.

To access Cisco.com, go to the following website:

http://www.cisco.com

Technical Assistance CenterThe Cisco TAC website is available to all customers who need technical assistance with a Cisco product or technology that is under warranty or covered by a maintenance contract.

Contacting TAC by Using the Cisco TAC Website

If you have a priority level 3 (P3) or priority level 4 (P4) problem, contact TAC by going to the TAC website:

http://www.cisco.com/tac

P3 and P4 level problems are defined as follows:

P3Your network performance is degraded. Network functionality is noticeably impaired, but most business operations continue.

P4You need information or assistance on Cisco product capabilities, product installation, or basic product configuration.

In each of the above cases, use the Cisco TAC website to quickly find answers to your questions.

To register for Cisco.com, go to the following website:

http://www.cisco.com/register/

xxCisco IP Telephony Network Design Guide

78-11103-03


If you cannot resolve your technical issue by using the TAC online resources, Cisco.com registered users can open a case online by using the TAC Case Open tool at the following website:

http://www.cisco.com/tac/caseopen

Contacting TAC by Telephone

If you have a priority level 1(P1) or priority level 2 (P2) problem, contact TAC by telephone and immediately open a case. To obtain a directory of toll-free numbers for your country, go to the following website:

http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml

P1 and P2 level problems are defined as follows:

P1Your production network is down, causing a critical impact to business operations if service is not restored quickly. No workaround is available.

P2Your production network is severely degraded, affecting significant aspects of your business operations. No workaround is available.

xxiCisco IP Telephony Network Design Guide

78-11103-03


xxiiCisco IP Telephony Network Design Guide

78-11103-03

Cisco IP T78-11103-03

C H A P T E R 1

Introduction

This chapter presents a high-level overview of several basic models that you can use in designing your IP telephony network. This overview provides some guidance with respect to when and why a particular design should be selected. Subsequent chapters delve into each network model in greater detail, beginning with the simplest model and building to increasingly complexity models.

This chapter includes the following major sections:

General Design Models, page 1-1

Single-Site Model, page 1-3

Multiple Sites with Independent Call Processing, page 1-5

Multisite IP WAN with Distributed Call Processing, page 1-7

Multisite IP WAN with Centralized Call Processing, page 1-10

General Design ModelsFigure 1-1 provides a composite scenario that illustrates the goals of the network design models discussed in this guide. This scenario represents what is possible with Cisco CallManager Release 3.0(5).

1-1elephony Network Design Guide

Chapter 1 IntroductionGeneral Design Models

Figure 1-1 Composite Model

Large campus(Up to 10,000 users)

Telecommuter(Without local call processing)

Branch office(With local call processing)

Branch office(Without local call processing)

V

V

V

IP WAN

Rest ofworld

Cisco IOSgatekeeper

PSTNIP

IP

IP

V

IP

IP

IP

IP

IP

IP

IP

4076

3

1-2Cisco IP Telephony Network Design Guide

78-11103-03

Chapter 1 IntroductionSingle-Site Model

The overall goals of an IP telephony network are as follows:

End-to-end IP telephony

IP WAN as the primary voice path with the Public Switched Telephone Network (PSTN) as the secondary voice path between sites

Lower total cost of ownership with greater flexibility

Enabling of new applications

For IP telephony networks based on Cisco CallManager Release 3.0(5), there are four general design models that apply to the majority of implementations:

Single-Site Model, page 1-3

Multiple Sites with Independent Call Processing, page 1-5

Multisite IP WAN with Distributed Call Processing, page 1-7

Multisite IP WAN with Centralized Call Processing, page 1-10

The following sections summarize the design goals and implementation guidelines for each of these models.

Single-Site ModelFigure 1-2 illustrates the model for an IP telephony network within a single campus or site.


78-11103-03

Chapter 1 IntroductionSingle-Site Model

Figure 1-2 Single-Site Model

IP WAN

PSTN

Catalystbackbone

Catalyst wiring closet

Cisco CallManagercluster

Msg store Msg storeLDAPDirectory

Cisco uOneGateServer

IPIP

IPIP

4076

4


78-11103-03

Chapter 1 IntroductionMultiple Sites with Independent Call Processing

The single-site model has the following design characteristics:

Single Cisco CallManager or Cisco CallManager cluster.

Maximum of 10,000 users per cluster.

Maximum of eight servers in a Cisco CallManager cluster (four servers for primary call processing, two for backup call processing, one database publisher, and one TFTP server).

Maximum of 2,500 users registered with a Cisco CallManager at any time.

PSTN only for all external calls.

Digital signal processor (DSP) resources for conferencing.

Voice mail and unified messaging components.

G.711 codec for all IP phone calls (80 kbps of IP bandwidth per call, uncompressed).

To guarantee voice quality, use Cisco LAN switches with a minimum of two queues. See Chapter 2, Campus Infrastructure Considerations, for more details.

Multiple Sites with Independent Call ProcessingFigure 1-3 illustrates the model for multiple, isolated sites that are not connected by an IP WAN. In this model, each site has its own Cisco CallManager or Cisco CallManager cluster to handle call processing for that site.


78-11103-03

Chapter 1 IntroductionMultiple Sites with Independent Call Processing

Figure 1-3 Multiple Independent Sites

VIP

IP

IP

VIP

IP

IP

V IP

IP

IP

V IP

IP

IP

PSTN

4076

5


78-11103-03

Chapter 1 IntroductionMultisite IP WAN with Distributed Call Processing

The model for independent multiple sites has the following design characteristics:

Cisco CallManager or Cisco CallManager cluster at each site to provide scalable call control.

Maximum of 10,000 IP phones per cluster.

No limit to number of clusters.

Use of PSTN for networking multiple sites and for all external calls.

DSP resources for conferencing at each site.

Voice message or unified messaging components at each site.

Voice compression not required.

Multisite IP WAN with Distributed Call ProcessingFigure 1-4 illustrates the model for multiple sites with distributed call processing.


78-11103-03


Figure 1-4 Multisite Model with Distributed Call Processing

Cisco IOS gatekeeper for admission control

VIP

IP

IP

VIP

IP

IP

V IP

IP

IP

V IP

IP

IP

4076

6

Site A

Site C

Site B

PSTN(Secondary voice path)

IP WANPrimary

voice path)


78-11103-03


The multisite IP WAN with distributed call processing has the following design characteristics:

Cisco CallManager or Cisco CallManager cluster at each location (10,000 users maximum per site).

Cisco CallManager clusters are confined to a single campus and may not span the WAN.

IP WAN as the primary voice path between sites, with the PSTN as the secondary voice path.

Transparent use of the PSTN if the IP WAN is unavailable.

Cisco IOS gatekeeper for E.164 address resolution.

Cisco IOS gatekeeper for admission control to the IP WAN.

Maximum of 100 sites interconnected across the IP WAN using hub and spoke topologies.

Compressed voice calls supported across the IP WAN.

Single WAN codec supported.

DSP resources for conferencing and WAN transcoding at each site.

Voice mail and unified messaging components at each site.

Minimum bandwidth requirement for voice and data traffic is 56 kbps. For voice, interactive video, and data, the minimum requirement is 768 kbps. In each case, the bandwidth allocated to voice, video, and data should not exceed 75% of the total capacity.

Remote sites can use Cisco IOS as well as gateways based on the Skinny Gateway Protocol.


78-11103-03

Chapter 1 IntroductionMultisite IP WAN with Centralized Call Processing

Multisite IP WAN with Centralized Call ProcessingFigure 1-5 illustrates the model for multiple sites with centralized call processing.

Figure 1-5 Multisite Model with Centralized Call Processing

Site A

Telecommuter

Site C

Site B

V

V

V

IP WAN

PSTN

IP

IP

IP

VIP

IP

IP

VIP

IP

IP

Site A

Centralized Cisco CallManager cluster

4076

7


78-11103-03


The multisite IP WAN with centralized call processing has the following design characteristics:

Central site supports only one active Cisco CallManager. A cluster can contain a secondary and tertiary Cisco CallManager as long as all IP phones served by the cluster are registered to the same Cisco CallManager at any given time. This is called a centralized call processing cluster.

Each centralized call processing cluster supports a maximum of 2500 users (no limit on number of remote sites). Multiple centralized call processing clusters of 2500 users at a central site can be interconnected using H.323.

IP phones at remote sites do not have a local Cisco CallManager.

The call admission control mechanism is based on bandwidth by location. See the Call Admission Control section on page 7-3.

Compressed voice calls across the IP WAN are supported.

Manual use of the PSTN is available if the IP WAN is fully subscribed for voice traffic (PSTN access code must be dialed after a busy signal).

Dial backup is required for IP phone service across the WAN in case the IP WAN goes down.

Voice mail, unified messaging, and DSP resource components are available at the central site only.

Minimum bandwidth requirement for voice and data traffic is 56 kbps. For voice, interactive video, and data, the minimum requirement is 768 kbps. In each case, the bandwidth allocated to voice, video, and data should not exceed 75% of the total capacity.

Remote sites can use Cisco IOS as well as gateways based on the Skinny Station Protocol.

If using voice mail, each site must have unique internal dial plan number ranges. You cannot overlap internal dial plans among remote sites if voice mail is required. (For example, no two sites can share 1XXX.)


78-11103-03



78-11103-03

Cisco IP T78-11103-03

C H A P T E R 2

Campus Infrastructure Considerations

To ensure successful implementation of Cisco IP Telephony Solutions, you must first consider your LAN infrastructure. Before adding voice to your network, your data network must be configured properly.

You can use these concepts and implementation techniques regardless of whether you have a headquarters with tens of thousands of users or a small branch with fewer than a hundred users. However, the size of the network determines the actual components and platforms you will select and the details that determine the scalability, availability, and functionality of your network.

This chapter contains these sections:

Overview, page 2-2

Power Protection Strategies, page 2-4

Network Infrastructure, page 2-5

High Availability, page 2-7

Physical Connectivity Options, page 2-9

Power to IP Phones, page 2-10

IP Addressing and Management, page 2-21

Quality of Service, page 2-28

2-1elephony Network Design Guide

Chapter 2 Campus Infrastructure ConsiderationsOverview

OverviewCisco IP Telephony Solutions rely on the stable foundation of Cisco multiprotocol routers and Catalyst multilayer LAN switches, which are the building blocks in enterprise networks. Figure 2-1 illustrates a general model of a Cisco IP telephony network using these components.


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsOverview

Figure 2-1 Cisco IP Telephony General Deployment Model

IP WAN

PSTNCatalystbackbone

Catalyst wiring closet

Cisco CallManagercluster

Msg store Msg storeLDAPDirectory

Cisco uOneGateServer

IPIP

IPIP

4076

8


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsPower Protection Strategies

Power Protection StrategiesReliable power is vital to IP telephony. An uninterruptible power supply (UPS) can be used to ensure a reliable and highly available infrastructure by protecting it from power failures. Each UPS has some amount of battery that will keep the equipment running for a certain period of time. The UPS can be configured with the appropriate amount of battery for desired results.

Caution Cisco strongly recommends that you provide some type of backup power for your IP telephony network. Cisco AVVID products do not ordinarily come with a backup power supply.

Here are some common strategies for using UPS:

Back up the wiring closet switches and downstream data center using UPS. While this strategy ensures that power is maintained to the phones, wall powered devices such as PCs can still go down.

Back up the whole building using UPS. This protects all devices and equipment from power failures. Protecting PCs in this fashion is useful because of the new breed of highly available data applications.

Provide a separate generator for power (besides the feed from the utility company) and use it as backup. In this case you might still need to add UPS because it usually takes a few minutes for the generator to ramp up. The advantage of this strategy is that less battery time is needed for each UPS.

In addition, UPS can be configured with options such as Simple Network Management Protocol (SNMP) management, remote monitoring, alarm reporting, and so on.

Further Information

For more information on power protection, see the Additional Information section on page xvii.


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsNetwork Infrastructure

Network InfrastructureBuilding an end-to-end IP telephony system requires an IP infrastructure based on Layer 2 and Layer 3 switches and routers, with switched connections to the desktop. Network designers must ensure that the endpoints are connected using switched 10/100 Ethernet ports, as illustrated in Figure 2-2.

Caution Cisco does not support using hubs for shared connectivity to the switches because they can interfere with correct operation of the IP telephony system.


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsNetwork Infrastructure

Figure 2-2 Switched 10/100 Ethernet Network Infrastructure

Cisco IP Phones, which are connected to the switch port, also provide connectivity for an attached computer. The phone electronics, which include a three-port switch, preserve the switched connectivity model for the computer and ensure quality of service for both the IP phone and the downstream computer.

CiscoIP Phones

Access Layer

Layer 3 Core

Server Farm

DistributionLayer

CiscoCallManagers

IPIP

IP

IPIP

IP

4077

6


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsHigh Availability

Note The three-port switch has two external ports and one internal port.

Figure 2-3 shows the two basic parts of the IP phonephone circuitry and switching electronicshoused in the same package. There are two switched connections available as RJ-45 jacks: one goes to the switch in the wiring closet using a straight-through cable, and the other connects a PC or workstation. Two additional non-Ethernet connectors can be used for attaching a headset and for debugging purposes.

Figure 2-3 Cisco IP Phone Internals

High AvailabilityThe distributed architecture of a Cisco IP telephony solution provides the inherent availability that is a prerequisite for voice networking. Cisco IP telephony solutions are also inherently scalable, allowing seamless provisioning of additional capacity for infrastructure, services, and applications.

In the world of converged networking, in contrast to the world of the PBX, availability is designed into a distributed system rather than into a box. Redundancy is available in the individual hardware components for services such

PC/workstationData

Voice

IP phoneIP

Catalystswitch

4077

9


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsHigh Availability

as power and supervisor modules. Network redundancy, however, is achieved with a combination of hardware, software, and intelligent network design practices.

Network redundancy is achieved at many levels (see Figure 2-2). Physical connections exist from the edge devices where IP phones and computers are attached to two spatially diverse aggregation devices. In the event that an aggregation device fails, or connectivity is lost for any reason (such as a broken fiber or a power outage), failover of traffic to the other device is possible. By provisioning clusters of Cisco CallManagers to provide resilient call control, other servers can pick up the load if any device within the cluster fails.

Advanced Layer 3 protocols such as Hot Standby Router Protocol (HSRP) or fast converging routing protocols, such as Open Shortest Path First (OSPF) and Enhanced Interior Gateway Routing Protocol (EIGRP), can be used to provide optimum network layer convergence around failures.

Advanced tools are also available for the MAC layer (Layer 2). Tunable spanning-tree parameters and the ability to supply a spanning tree per virtual LAN (VLAN) allow fast convergence. Value-added features such as uplink-fast and backbone-fast allow intelligently designed networks to further optimize network convergence.

High availability of the underlying network plays a major role in ensuring a successful deployment. This translates into redundancy, resiliency, and fast convergence.

Further Information

For more information on high availability, see the Additional Information section on page xvii.


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsPhysical Connectivity Options

Physical Connectivity OptionsThis section describes the various ways in which IP phones and computers can be connected to the network (see Figure 2-4).

Figure 2-4 Network Connectivity Options

The first option shown in Figure 2-4 is to connect the IP phone to the switch and to connect the data device (computer or workstation) to the switched Ethernet port on the IP phone, as described in the Network Infrastructure section on page 2-5. This is the most common connectivity option and aids in rapid deployment with minimal modifications to the existing environment. This arrangement has the advantage of using a single port on the switch to provide connectivity to both devices. Also, no changes to the cabling plant are required if the phone is line powered (see the Power to IP Phones section on page 2-10). The disadvantage is that, if the IP phone goes down, the computer also loses connectivity.

The second option shown in Figure 2-4 is to connect the IP phone and the computer using different switch ports. Although this option doubles the switch port count for every user, it provides a level of redundancy for the user. If the phone goes down, the PC is not affected, and vice versa. Also, you can connect

Singlecable

Soft phone

Multiplecables

1

2

3

IP

IP

IP

4078

0


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsPower to IP Phones

the phone and PC to ports on different modules, thus achieving another layer of redundancy by providing protection for one of the devices if either module goes down.

The third option shown in Figure 2-4 differs from the others in that the phone is not a hardware device, but is a JTAPI application running on a computer. This option, the Cisco IP SoftPhone, could be particularly useful in environments where the need for a separate handset is minimal.

Power to IP PhonesCisco IP Phones support a variety of power options. This section discusses each of the three available power schemes:

Inline Power, page 2-10

External Patch Panel Power, page 2-17

Wall Power, page 2-20

Inline PowerThe advantage of inline power is that it does not require a local power outlet. It also permits centralization of power management facilities.

With the inline power method, pairs 2 and 3 (pins 1, 2, 3, and 6) of the four pairs in a Category 5 cable are used to transmit power (6.3W) from the switch. This method of supplying power is sometimes called phantom power because the power signals travel over the same two pairs used to transmit Ethernet signals. The power signals are completely transparent to the Ethernet signals and do not interfere with their operation.


78-11103-03


The inline method of supplying power requires the new power-enabled line card for the switch. This mechanism is currently available in the following Cisco Catalyst systems:

Catalyst 6000 Family Switches with minimum Cisco CatOS Release 5.5 or later.

Catalyst 4000 Family Switches (Catalyst 4006 with Power Entry Module and Auxiliary Power Shelf. Require minimum of two power supplies to power 240 ports.) Minimum Cisco CatOS Release 6.1 or higher.

Catalyst 3524-PWR (standalone 24-port 10/100 two gigabit uplinks). Minimum Cisco IOS Release 12.0(5).XU or higher.

Figure 2-5) illustrates the new Catalyst 6000 power-enabled line card.

Figure 2-5 Catalyst 6000 Power-Enabled Line Card

Before the Catalyst switch applies power, it first tests for the presence of an IP phone. By first testing for the unique characteristics of the Cisco IP Phone and then applying power, using a low current limit and for a limited time, the Catalyst switch avoids damage to other types of 10/100 Ethernet terminating devices.

Daughtercardprovidesinline power

4077

3


78-11103-03


Establishing Power to the IP Phone

To establish power to the IP phone, the power-enabled Catalyst switch performs the following steps:

1. The switch performs phone discovery by sending specific tones down the wire to the IP phone. In its unpowered state, the IP phone loops these tones back to the switch.

When the switch receives this tone, it knows that the device connected is a Cisco IP Phone and it is safe to deliver power to the device. This behavior is exhibited only by Cisco IP Phones, so that other devices connected to the switch port are safe from receiving current. This hardware polling is done by the system at fixed intervals on a port-by-port basis until a LINK signal is seen or the system has been configured not to apply inline power to that port.

2. When the switch finds an IP phone by using phone discovery, it applies power to the device. The Cisco IP Phone powers up, energizing the relay and removing the loopback (normally closed relay becomes open) between transmit and receive pairs. It also sends a LINK packet to the switch. From this point, the IP phone functions as a normal 10/100 Ethernet device.

If the LINK packet is received within five seconds, the Catalyst switch concludes that the attached device is a Cisco IP Phone, and it maintains the power feed. Otherwise power is removed and the discovery process is restarted.

3. Once the Cisco IP Phone is powered and responding, the phone discovery mechanism enters a steady state. If the phone is removed or the link is interrupted, the discovery mechanism starts again. The port is checked every five seconds for a LINK packet and, in its absence, the test tone is generated.

The advantage of this mechanism is that power is supplied to the phone by the switch just as it is in a traditional telephony environment. In some installations, it is entirely possible that only two pairs have been terminated out of the four available for the data run between the wiring closet and the desktop location. In such cases the inline power method can allow customers to deploy IP telephony by using the existing cable plant without any modification.


78-11103-03


Inline Power Configuration

The inline power method requires Catalyst software Release 5.5 for Catalyst 6000, Cisco CatOS 6.1 or higher for Catalyst 4000, and Cisco IOS Release 12.0(5)XU or later for Catalyst 3524-PWR. These software releases support all the necessary commands to enable the switch to deliver power through the power-enabled line card. You also have the option of explicitly not providing power through the line card, but the auto detection feature has the capability of determining whether an attached phone requires power or not.

Configuring the Inline Power Mode

The inline power mode can be configured on each port on the switch using the one of the following commands.

For Cisco CatOS:

set port inlinepower mod/port {auto | off}

For native Cisco IOS:

Switch(config-if)# power inline {auto | never}

The two modes are defined as follows:

autoThe supervisor engine tells the port to supply power to the phone only if it has discovered the phone using the phone discovery mechanism, as described in the Establishing Power to the IP Phone section on page 2-12. This is the default behavior.

offThe supervisor engine instructs the port not to apply power, even if it can and if it knows that there is a connected Cisco IP Phone device.

If the set port inlinepower command executes successfully, the system displays a message similar to

Inline power for port 7/1 set to auto

If the set port inlinepower command does not execute successfully, the system prints a message similar to

Failed to set the inline power for port 7/1


78-11103-03


Note The remainder of this chapter uses the Cisco CatOS command syntax. For native Cisco IOS commands, refer to the specific product documentation for the switches and line cards.

Configuring the Default Power Allocation

You can configure the default power allocation using the following command:

set inlinepower defaultallocation value

This command specifies how much power, in watts, to apply on a per-port basis. The default value of 10W is good for any currently available or planned Cisco IP Phone model. The phone has the intelligence to report to the switch how much power it actually needs (using Cisco Discovery Protocol), and the switch can adjust the delivered power accordingly, but under some circumstances you might want to reconfigure the default allocation. For example, if the switch has only 7W of available remaining power and you attach a new phone, the switch will refuse power to the phone because it initially needs to send the default 10W (even though the phone itself only requires 6.3W). In this case, you could reconfigure the default power allocation to 7W, and the switch would provide power.

If the set inlinepower defaultallocation command executes successfully, the system displays a message similar to

Default Inline Power allocation per port: 10.0 Watts (0.24 amps @42V)

If the set inlinepower defaultallocation command does not execute successfully, the system displays the following error message:

Default port inline power should be in the range of 2000..12500 (mW)

Displaying the Inline Power Status

You can display the details on the actual power consumed by using the following command:

show port inlinepower {mod | mod/port}


78-11103-03


Here is an example display from the show port inlinepower command:

Default Inline Power allocation per port: 12.500 Watts (0.29 Amps @42V)Total inline power drawn by module 7: 37.80 Watts (0.90 Amps @42V)y module 5: 37.80 Watts ( 0.90 Port InlinePowered PowerAllocated Admin Oper Detected mWatt mA @42V----- ----- ------ -------- ----- -------- 7/1 auto off no 0 0 7/2 auto on yes 12600 300 7/3 auto faulty yes 12600 300 7/4 auto deny yes 0 0 7/5 on deny yes 0 0 7/6 on off no 0 0 7/7 off off no 0 0

Other Inline Power Considerations

This section briefly discusses miscellaneous issues related to inline power supply.

Power Consumption

Cisco IP Phone model 7960 consumes 6.3W. Depending upon the number of phones attached or planned, the system should be equipped with a 1300W power supply or the new power supply capable of delivering 2500W.

Note The new power supply for the Cisco Catalyst 6000 family switches needs 220V to deliver 2500W of power. When powered with 110V, it delivers only 1300W. In addition, the power supply needs 20A regardless of whether it is plugged into 110V or 220V.


78-11103-03


Error and Status Messages

You can configure the system to send syslog messages that indicate any deviations from the norm. These messages include the following deviations:

Not enough power available

5SYS-3-PORT_NOPOWERAVAIL:Device on port 5/12 will remain unpowered

Link did not come up after powering up the port

%SYS-3-PORT_DEVICENOLINK:Device on port 5/26 powered but no link up

Faulty port power

%SYS-6-PORT_INLINEPWRFLTY:Port 5/7 reporting inline power as faulty

Power status can also be displayed on a per-port basis using the show port status command. The command displays the following values:

OnPower is being supplied by the port.

OffPower is not being supplied by the port.

Power-denySystem does not have enough power, so the port does not supply power.

Dual Supervisors

When the system is using dual supervisors, power management per port and phone status are synchronized between the active and standby supervisor. This is done on an ongoing basis and is triggered with any change to the power allocation or phone status. The usefulness and functioning of the high availability features are unaffected by the use of inline power.

Power Protection

Cisco recommends that backup power be used for a higher degree of redundancy and availability. See the Power Protection Strategies section on page 2-4.


78-11103-03


Ports and Power Supplies

Table 2-1 shows the number of IP phones that can be supported with the 1050W, 1300W, and 2500W power-enabled line cards on a Cisco Catalyst 6509 with the Policy Feature Card (PFC).

External Patch Panel PowerIf the switch does not have a power-enabled line card, or one is not available for the switch being used, then a Cisco power patch panel (Figure 2-6) can be used. The power patch panel can be inserted in the wiring closet between the Ethernet switch and the Cisco IP Phone.

Figure 2-6 Cisco Power Patch Panel

The patch panel has a 250W power supply and draws its power from a 110 VAC source. It can accommodate 48 ports and is capable of supplying power to each of the 48 ports at 6.3W per Cisco IP Phone model 7960. We recommend an uninterruptible power supply (UPS) for backup in the event of a power failure.

Table 2-1 IP Phones Supported with Power-Enabled Line Cards

Power Supply IP Phones Supported at 6.3W per Phone

1050W 60 IP phones

1300W 96 IP phones (2 modules)

2500W 240 IP phones (5 modules)

4077

4


78-11103-03


As shown in Figure 2-7, the patch panel has two ports per connection: one port on the switch side and one port on the phone side.

Figure 2-7 Power Patch Panel Connectivity to Cisco IP Phone

This arrangement of applying power to the phone uses all four pairs in the Category 5 cable. Unlike the inline method, Ethernet pairs do not carry power signals. Rather, the remaining pairs of Category 5 cable are used for delivering power from the patch panel (see Figure 2-8).

4 pairs(8 wires)

2 pairs(4 wires)

Switch sideRJ-45

Phone sideRJ-45

1 3 52 4 6

1 3 52 4 6

4847

4847

IP IP IP IP IP 4077

5


78-11103-03


Figure 2-8 External Power Through the Power Patch Panel

As shown in Figure 2-8, pairs 2 and 3 from the switch are patched straight through to pairs 2 and 3 coming from the phone. Pairs 1 and 4 from the phone terminate at the patch panel (Ethernet does not use pairs 1 and 4) and power is applied across them to power the phone. The actual conductors used are pins 4 and 5 (pair 1) and pins 7 and 8 (pair 4) for power and ground return. This means that all four pairs in the Category 5 cable need to be terminated at the users desk and in the wiring closet.

The Cisco power patch panel operates in discovery mode. In discovery mode, the patch panel tries to verify if the device connected to it is a Cisco IP Phone. It does this by using the phone discovery mechanism used in the inline power method, except that here the patch panel, rather than the switch, generates the test tone. Everything else about the process is identical to that described in the Establishing Power to the IP Phone section on page 2-12.

Switch sideRJ-45

Switch portwithout

inline power

Phone sideRJ-45

PowerPair 4

Pair 1

Cisco IP phoneCategory5 cable

Pair 2

Pair 3

ACSource

IP

Power patch panel port

4077

7


78-11103-03


Wall PowerThe last option is to power the Cisco IP Phone from a local transformer module plugged into a nearby outlet (maximum of 3 meters), as illustrated in Figure 2-9.

Figure 2-9 Wall Powered Cisco IP Phone

A combination of these power options can provide redundant power to the Cisco IP Phone. Internally, these three sources are combined through protection diodes, so that whatever combination is used, the phone shares the power.

Summary of RecommendationsYou can purchase line cards that are capable of applying power to the IP phone. If you want to deploy IP phones with existing switches, you can either buy new line cards capable of applying power or use the external Cisco power patch panel to power the phones if powered line cards are not available for the switch. As a final option, you can use wall power to provide power to the IP phones.

ACsource

110 VAC wallpower to 48VDC

converterIP

4077

8


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsIP Addressing and Management

IP Addressing and ManagementEach IP phone requires an IP address, along with associated information such as subnet mask, default gateway, and so on. Essentially, this means that your organizations need for IP addresses doubles as you assign IP phones to users.

This information can be configured statically on the IP phone, or it can be provided by the Dynamic Host Configuration Protocol (DHCP).

The following sections describe various ways that you can meet these IP addressing requirements:

Assigning IP Addresses Using Same Subnet as Data Devices

Modifying the IP Addressing Plan

Creating a Separate IP Subnet for IP Phones

Assigning IP Addresses Using Same Subnet as Data Devices

You might want to provide IP addresses to the IP phones using the same subnet as data devices. This might be a straightforward solution in your situation. However, many sites have IP subnets with more than 50% of subnet addresses already allocated. If your network fits this description, this is not the best solution for your needs.

Modifying the IP Addressing Plan

You could assign addresses for IP phones out of the existing subnets, but you must renumber the IP addressing plan. This may not always be feasible.

Creating a Separate IP Subnet for IP Phones

You can put the IP phones on a separate IP subnet. The new subnet could be in a registered address space or in a private address space, such as network 10.0.0.0. Using this scheme, the PC would be on a subnet reserved for data devices and the phone would be on a subnet reserved for voice. Configuration on the IP phone can be minimized by having the phone learn as much information dynamically as possible. Therefore, when the IP phone powers up it should get its voice subnet automatically, then send a DHCP request on that subnet for an IP address.

The automated mechanism by which the IP phone gets its voice subnet is provided through enhancements to the Cisco Discovery Protocol (CDP).


78-11103-03


CDP EnhancementsCisco Discovery Protocol (CDP) is a device discovery protocol that runs on all Cisco equipment. With CDP, each device sends periodic messages to a multicast address and in turn listens to the periodic messages sent by other devices. This allows devices on the network to discover one another and learn information such as protocols used, protocol addresses, native VLAN of interconnected ports, and so on. CDP is also used to send some Layer 2 and Layer 3 messages.

Cisco IP Phones use CDP to interact with the switch so that the switch knows that an IP phone is connected to it. To provide this level of support, three new fields have been added to CDP:

Voice VLAN ID (VVID) for communicating the voice subnet to the IP phone

Trigger field for soliciting a response from the connected device

Power requirement field for getting the exact power requirement from the phone

VVID Field

A VLAN (Layer 2) maps to a subnet (Layer 3) as a broadcast domain, such that a VLAN is equivalent to a subnet. The VVID was introduced with release 5.5 of the Catalyst software. This is the voice VLAN that the switch assigns to the IP phone inside the CDP message. It allows the IP phone to get its VLAN ID automatically when it is plugged into the switch if a VLAN is configured for the phone (see the Voice VLAN Configuration section on page 2-24). If no VLAN is configured for the IP phone, the phone resides in the native VLAN (data subnet) of the switch.

Trigger Field

The trigger field is used to force a response from the connected device. Under normal circumstances, a device sends CDP update messages at a configured interval (default is one minute). If an IP phone is connected between CDP messages, it cannot receive its VVID. In this case, the IP phone issues a trigger in the CDP message it sends to the switch, forcing the switch to respond with a VVID.


78-11103-03


Power Requirement Field

When the switch provides inline power to an IP phone, it has no way of knowing how much power the phone needs (this varies by model). Initially, the switch allocates 10W, then adjusts the delivered power according to the requirements sent by the IP phone in the CDP message.

Auxiliary VLANs and Data VLANs

The new voice VLAN is called an auxiliary VLAN in the Catalyst software command-line interface (CLI). In the traditional switched world, data devices reside in a data VLAN. The new auxiliary VLAN is used to represent other types of devices collectively. Today those devices are IP phones (hence the notion of a voice VLAN), but, in the future, other types of non-data devices will also be part of the auxiliary VLAN. Just as data devices come up and reside in the native VLAN (default VLAN), IP phones come up and reside in the auxiliary VLAN, if one has been configured on the switch.

When the IP phone powers up, it communicates with the switch using CDP. The switch then provides the phone with its configured VLAN ID (voice subnet), also known as the voice VLAN ID or VVID. Meanwhile, data devices continue to reside in the native VLAN (or default VLAN) of the switch. A data device VLAN (data subnet) is referred to as a port VLAN ID or PVID.

Figure 2-10 shows an IP phone and a PC in their respective VLANs.

Figure 2-10 Voice VLAN ID and Port VLAN ID

PC VLAN = 3Phone VLAN = 200IP

4078

1


78-11103-03


Voice VLAN Configuration

To configure the VVID from the Catalyst software CLI, use the set port auxiliaryvlan command. You can use this command to set the VVID on a single port, on a range of ports, or for an entire module. The following example shows how to display the command syntax:

Console> (enable) set port auxiliaryvlan helpUsage: set port auxiliaryvlan

(vlan + 1..1000)

In the following example, the VVID is set to 222 for ports 2/1 through 2/3. When the phone powers up, the switch instructs it to register with VLAN 222.

Console> (enable) set port auxiliaryvlan 2/1-3 222Auxiliaryvlan 222 configuration successful.

The following examples show how to display which ports are in which auxiliary VLAN:

Console> show port auxiliaryvlan 222AuxiliaryVlan auxVlanStatus Mod/Ports------------- ------------- ---------222 222 1/2,2/1-3Console> show port 2/1Port AuxiliaryVlan AuxVlan-Status----- ------------- --------------2.1 222 active

The following is an example of VVID configuration on Catalyst switches running Cisco IOS at the interface level (for example, Catalyst 3524-PWR and 2900XL):

interface FastEthernet0/1switchport trunk encapsulation dot1qswitchport trunk native vlan switchport mode trunkswitchport voice vlan spanning-tree portfastswitchport mode trust


78-11103-03


Connecting to the Network

The following steps outline the process that takes place when an IP phone is powered up and plugged into the network:

1. The IP phone begins a CDP exchange with the switch. The phone issues a trigger CDP to force a response from the switch. That response contains the VVID for the phone.

2. If the IP phone is configured to use DHCP (the default), it issues a DHCP request on the voice subnet it got from the switch. This is the recommended mode of operation. Static addressing can be used, but it prevents mobility.

3. The IP phone gets a response from the DHCP server in the network. Along with the DHCP response, which provides the IP address to the telephone, it is also possible to supply the address of the TFTP server from which the phone gets its configuration. This is done by configuring option 150 on the DHCP server and specifying the address of the TFTP server; Cisco DHCP server supports this feature. Again, it is possible to specify the TFTP server address manually, but this would limit adds, moves, and changes, as well as remove some other benefits.

4. The IP phone contacts the TFTP server and receives a list of addresses of Cisco CallManagers. Up to three Cisco CallManagers can be specified in the list. This provides redundancy in case the first Cisco CallManager in the list is not available.

5. The IP phone now contacts the Cisco CallManager and registers itself, receiving in return a configuration file and runtime code necessary for the phone to operate. For each configuration, the IP phone receives a directory number (DN) from the Cisco CallManager to be used for calling that particular IP phone.

6. The IP phone is ready to make and receive calls.

Note This process takes about 90 seconds. To speed it up, turn on portfast and turn off port channeling and trunking. This reduces the time to about 30 seconds.


78-11103-03


Sample Addressing Plan and Recommendations

Figure 2-11 shows examples of preferred IP addressing for connecting IP phones and PCs.

Figure 2-11 Preferred IP Addressing Plans

IP phone uses10.0.0.0 network

IP phone uses10.0.0.0 network

IP phone + PC onsame switch ports

171.68.249.100

171.68.249.101

IP phone + PC onseparate switch ports

171.68.249.100

10.1.1.1

10.1.1.1IP

IP

4078

3


78-11103-03


Figure 2-12 shows examples of preferred IP addressing for connecting IP phones, PCs, and Cisco IP SoftPhones.

Figure 2-12 Optional IP Addressing Plans

Here are some summary recommendations for IP addressing:

Continue to use existing addressing for data devices.

Add IP phones with DHCP as the mechanism for getting addresses.

Use a unique range of IP addresses (for example, RFC 1918).

Use the auxiliary VLAN feature where possible. This requires a switch capable of handling 802.1Q with enhanced software.

IP phone + PC onsame switch ports

171.68.249.100

171.68.249.101

Real IP addresses

IP phone + PC onseparate switch ports

171.68.249.100

171.68.249.101

Real IP addresses IP phone + PCshare the same device(Cisco IP Softphone)

171.68.249.100

Real IP addresses

IP

IP

IP

4078

2


78-11103-03

Chapter 2 Campus Infrastructure ConsiderationsQuality of Service

Quality of ServiceIn a converged environment, all types of traffic travel over a single transport infrastructure. Yet all traffic types are not the same. Data is bursty, loss intolerant, and not latency sensitive. Voice, on the other hand, is nonbursty and has some tolerance to loss but is latency sensitive. The challenge is in providing the required level of service for each of these traffic types.

Running both voice and data on a common network requires the proper quality of service (QoS) tools to ensure that the delay and loss parameters of voice traffic are satisfied. These tools are available as features in IP phones, switches, and routers.

See Chapter 8, Quality of Service, for information on WAN QoS.

Traffic Classification TypesThe goal of protecting voice traffic from being run over by data traffic is accomplished by classifying voice traffic as high priority and then allowing it to travel in the network before low priority traffic. Classification can be done at Layer 2 or at Layer 3 as follows:

At Layer 2 using the three bits in the 802.1p field (referred to as class of service, or CoS), which is part of the 802.1Q tag.

At Layer 3 using the three bits of the differentiated services code point (DSCP) field in the type of service (ToS) byte of the IP header.

Classification is the first step toward achieving quality of service. Ideally, this step should be done as close to the source as possible, usually at the access layer of the network.


78-11103-03


Trust BoundariesThe concept of trust is an important and integral one to implementing QoS. Once the end devices have a set class of service (CoS) or type of service (ToS), the switch has the option of trusting them or not. If the switch trusts the settings, it does not need to do any reclassification; if it does not trust the settings, then it must perform reclassification for appropriate QoS.

The notion of trusting or not trusting forms the basis for the trust boundary. Ideally, classification should be done as close to the source as possible. If the end device is capable of performing this function, then the trust boundary for the network is at the access layer in the wiring closet. If the device is not capable of performing this function, or the wiring closet switch does not trust the classification done by the end device, the trust boundary may shift. How this shift happens, depends on the capabilities of the switch in the wiring closet. If the switch can reclassify the packets, then the trust boundary remains in the wiring closet. If the switch cannot perform this function, then the task falls to other devices in the network going toward the backbone. In this case, the rule of thumb is to perform reclassification at the distribution layer. This means that the trust boundary has shifted to the distribution layer. It is more than likely that there is a high-end switch in the distribution layer with features to support this function. If possible, try to avoid performing this function in the core of the network.

In summary, try to maintain the trust boundary in the wiring closet. If necessary, move it down to the distribution layer on a case-by-case basis, but avoid moving it down to the core of the network. This advice conforms with the general guidelines to keep the trust boundary as close to the source as possible.

Note This discussion assumes a three-tier network model, which has proven to be a scalable architecture. If the network is small, and the logical functions of the distribution layer and core layer happen to be in the same device, then the trust boundary can reside in the core layer if it has to move from the wiring closet.


78-11103-03


Traffic Classification at Layer 2Cisco IP Phones can mark voice packets as high priority using CoS as well as ToS. By default, the phone sends 802.1Q tagged packets with the CoS and ToS set to a value of 5. Figure 2-13 shows packets from the IP phone being sent as tagged frames with the 802.1p fields set to 5 and frames from the PC being sent untagged.

Figure 2-13 Frame Tagging with PVID and VVID

Because most PCs do not have an 802.1Q capable network interface card (NIC), they send the packets untagged. This means that the frames do not have a 802.1p field. Also, unless the applications running on the PC send packets with a specific CoS value, this field is zero. A special case is where the TCP/IP stack in the PC has been modified to send all packets with a ToS value other than zero. Typically this does not happen, and the ToS value is zero.

Even if the PC is sending tagged frames with a specific CoS value, Cisco IP Phones can zero out this value before sending the frames to the switch. This is the default behavior and is illustrated in Figure 2-14. Frames coming from the phone have a CoS of 5 and frames coming from the PC have a CoS of 0. When the switch receives these frames, it can take into account these values for further processing based on its capabilities.

Untagged 802.3

Tagged 802.1q

IP

4076

9


78-11103-03


Figure 2-14 PC Is Not Trusted

The switch uses its queues (available on a per-port basis) to buffer incoming frames before sending them to the switching engine. (It is important to remember that input queuing comes into play only when there is congestion.) The switch uses the CoS value(s) to put the frames in appropriate queues. The switch can also employ mechanisms such as weighted random early detection (WRED) to make intelligent drops within a queue (also known as congestion avoidance) and weighted round-robin (WRR) to provide more bandwidth to some queues than to others (also known as congestion management).

Example Scenario for the Catalyst 6000

Each port on the Catalyst 6000 family switches has one receive queue and two transmit queues. On the receive side, all packets go into a regular queue. Tail drop is used on this regular queue for congestion avoidance, but this mechanism comes into play only if there is congestion on the receive side. This is unlikely in most cases, because a frame coming in from a 10/100 Ethernet or Gigabit Ethernet port onto a 32-Gbps bus will not experience congestion.

On the transmit side, CoS values 0, 1, 2, and 3 go into the low regular queue and CoS values 4, 5, 6, and 7 go into the high regular queue. In addition, within each queue WRED can be used to make intelligent drops based on the CoS value and the percentage of buffers that are full. Finally, the high regular queue and low regular queue are serviced based on the WRR configuration. These queues are configurable; for example, they could be configured to be serviced in a 25 to 75 ratio.

Example: set port qos 2/1 trust-ext untrusted

CoS = 5

CoS = 5

PC is untrustedPhone ASIC

rewrites CoS = 0

CoS = 0 CoS = 7

IP

4077

0


78-11103-03


Note All the values for WRED, WRR, and queue size are configurable.

Cisco Catalyst 6000 family switches also support the notion of trusted and untrusted QoS on a per-port basis. This parameter is configured with the following command:

set port qos mod/ports.. trust {untrusted | trust-cos | trust-ipprec | trust-dscp}

This command allows you to configure the trust state as well as specify to trust CoS or ToS (trust-ipprec) or DSCP (trust-dscp), which is an emerging Layer 3 standard under the Differentiated Services working group of the Internet Engineering Task Force (IETF).

So far, this discussion has centered around the case depicted in Figure 2-14, where voice traffic comes in as CoS 5 and PC traffic is zeroed out if there is any tag. There may be times, however, when it is desirable to trust the PC CoS (if sending tagged packets) or assign a value other than zero. This can be achieved on Catalyst switches as well.

Figure 2-15 shows the case where the PC is trusted completely, and whatever CoS it presents is honored.

Figure 2-15 PC Is Trusted

Example: set port qos 2/1 trust-ext trust-cos

CoS = 5

CoS = 5

Trusted

CoS = 7 CoS = 7

IP

4077

1


78-11103-03


Figure 2-16 shows a different case in which the PC is not trusted completely, yet it gets a level of service higher than it would with CoS=0. This is achieved by extending a specific CoS value to the PC traffic.

Figure 2-16 PC Is Not Trusted but Gets a Non-Zero CoS

Note All of the previously discussed configurations can be used on any Catalyst switch that runs Cisco CatOS or native Cisco IOS software (for example, Catalyst 3524XL).

QoS Commands

Three commands are available for specifying classification and trust boundary:

set port qos mod/ports trust {untrusted | trust-cos | trust-ipprec | trust-dscp}

Defines the trust boundary.

set port qos mod/ports {trust-ext | trust-cos}

Extends the trust boundary to the PC.

set port qos mod/ports cos-ext value

Sets a defined CoS to the traffic from the PC.

Example: set port qos 2/1 cos-ext 2

PC is untrusted.Phone ASICrewrites CoS basedon switchconfiguration (for ExampleExtended CoS = 2)

CoS = 5

CoS = 5

CoS = 2 CoS = 7

IP

4077

2


78-11103-03


Traffic Classification at Layer 3Using the 802.1p bits within the 802.1Q tag provides the desired QoS results at Layer 2. When traffic has to cross a Layer 3 boundary, however, it becomes imperative to implement these mechanisms using Layer 3 parameters, such as the 3 IP precedence bits (commonly referred to as ToS) or the new DSCP parameter, which uses the six most significant bits within the ToS byte of the IP header. Traffic crosses a Layer 3 boundary when packets are routed between subnets by Layer 3 switches or routers. Traffic also crosses a Layer 3 boundary when packets need to go out of the campus network onto the WAN through edge routers. When this happens, Layer 2 classification does not help. Layer 3 classification is needed for achieving the desired level of QoS. All of the QoS techniques employed by the routers (including the very important WAN QoS) rely on Layer 3 classification.

Layer 3 classification can be achieved by using the appropriate platforms in the campus. Beginning with the IP phones, packets are already presented to the switch with CoS = ToS = 5. This Layer 3 classification is preserved even if the packets travel all the way through to the WAN edge router where the Layer 2 header is removed. So, if the trust boundary is at the source (IP phone), voice traffic has the ToS bits set to 5 and is presented to the network devices for appropriate treatment. WAN routers can use this classification to employ any of the queuing techniques. If the trust boundary is not at the source and packets need to be reclassified, then the device performing this function should be capable of doing it at Layer 3 before it can cross a Layer 3 boundary.

Layer 3 Traffic Classification on the Cisco Catalyst 6000

Cisco Catalyst 6000 family switches equipped with the Policy Feature Card (PFC) perform Layer 3 traffic classification by default when the port is trusted. Thus if a packet comes into a trusted port with CoS = 5, the switch takes this value and resets the ToS bits to 5 as well. No additional configuration is needed. If the port is untrusted, the packet gets a default CoS at the input port.

Then you can configure a QoS access control list (ACL) on the switch and rewrite the ToS to a desired value based on some matching criteria. For example, the following command sets a ToS of 5 for all packets coming from subnet 10.1.1.0 and destined to any address.

Console> (enable) set qos acl ip TEST dscp 40 10.1.1.0 0.0.0.255 any


78-11103-03


QoS ACLs can also include Layer 4 information for classifying individual applications. Cisco Catalyst 6000 family switches are also capable of policing traffic based on Layer 3 addresses and Layer 4 port numbers. For example, you can police individual HTTP flows to 1 Mbps and aggregate all HTTP flows to 25 Mbps.

The following are important points in regard to QoS functionality on the Cisco Catalyst 6000 family switches:

By default, QoS is not enabled. Use set qos enable to enable QoS on the switch.

By default, ports are not trusted. Use the following command to enable trust on a port:

set port qos mod/ports.. trust {untrusted | trust-cos | trust-ipprec | trust-dscp}

QoS configurations can be applied on a per-port basis or on a per-VLAN basis. This works very well for IP telephony implementations where phones are on a separate VLAN, as described in the IP Addressing and Management section on page 2-21.

By default, Cisco Catalyst 6000 family switches map CoS to ToS when the port is trusted or by using QoS ACLs.

Tips If the trust boundary happens to be on a wiring closet switch that is not capable of reclassifying at Layer 3, you can shrink the trust boundary to the distribution layer where a Layer 3 capable device is more likely to be present.


78-11103-03


Summary of Capabilities and RecommendationsTable 2-2 briefly summarizes the capabilities within the Cisco Catalyst switch families.

Note Currently the only Cisco LAN switches that support a minimum of two queues and that can guarantee voice quality are the Cisco Catalyst 8500, Catalyst 6XXX family, Catalyst 4XXX family, Catalyst 3500XL, and Catalyst 2900XL.

Here are some summary recommendations for QoS implementation:

Create a trust boundary at the network edge in the wiring closet. Make ports trusted on the wiring closet switch where IP phones are attached.

Reclassify ToS at the edge if devices cannot be trusted.

Shrink the trust boundary to the distribution layer and reclassify ToS there if reclassification is not possible at the edge.

Use a priority queue if possible for delay-sensitive traffic.

Table 2-2 Summary of QoS Capabilities on the Cisco Catalyst Switch Family

PlatformAbility to Trust

Reclassify CoS

Reclassify ToS

Congestion Avoidance (WRED)

Priority Queue

Multiple Queues

Congestion Management (WRR) Policing

Catalyst 6000

Yes Yes Yes Yes No Yes Yes Yes

Catalyst 5000

No Yes Yes1

1. With additional configuration

Yes No No No No

Catalyst 4000

No Yes No No No Yes No No

Catalyst 3500

Yes Yes No No Yes Yes No2

2. Round robin only

No


78-11103-03


Use QoS ACLs for more granular classification of packets using Layer 4 information.

Use policing if necessary to limit traffic for individual flows as well as aggregate flows.

Have traffic going to the WAN edge classified at Layer 3 so that the router can use it for advanced WAN queuing mechanisms.

Use a WAN edge router as the classifier for very small remote site networks where a Layer 3 capable switch is not available.

2-37Cisco IP Tele

Documents

Cisco IP Telephony Network Design Guide - Net130.Com IP Telephony Network... · iii Cisco IP Telephony Network Design Guide 78-11103-03 CONTENTS Preface xi Purpose xi Audience xii